wpnewsio (@wpnewsio@mastodon.social)
During a recent investigation, we discovered a sophisticated WordPress backdoor hidden in what appears to be a JavaScript data file. This malware automatically logs attackers into administrator accounts without requiring[…]
#WordPress #Security
https://ift.tt/mif34Yy
Show Original Post
notes (@notes@misskey.kevga.de)
Ich komme einfach nicht mit #WordPress zurecht. Keine Chance. Es gibt Blöcke, die ich nicht löschen kann. Keine Ahnung warum, aber ich muss das scheinbar einfach hinnehmen 🤔
Show Original Post
bozygo (@bozygo@mastodon.social)
Sıfırdan wordpress sitesi kurmak ne kadar sürer?
https://bozygo.com/sifirdan-wordpress-sitesi-kurmak-ne-kadar-surer/
#wordpress #websitesi #webtasarım
Show Original Post
techbot (@techbot@social.raytec.co)
Law Firm Sites Hijacked in Suspected Supply-Chain Attack
GrayCharlie, a threat actor active since mid-2023, compromises WordPress sites to inject links redirecting visitors to NetSupport RAT payloads via fake browser updates or ClickFix mechanisms. These infections often lead to Stealc and SectopRAT deployments. The group's infrastructure is primarily linked to MivoCloud and HZ Hosting Ltd. A cluster of US law firm sites was compromised around November 2025, possibly through a supply-chain attack. GrayCharlie uses two main attack chains: one involving fake browser updates and another using ClickFix-style lures. The group's objectives appear to focus on data theft and financial gain, with potential access selling to other threat actors.
Pulse ID: 6995e8969f9d1c390db3fa4e
Pulse Link: https://otx.alienvault.com/pulse/6995e8969f9d1c390db3fa4e
Pulse Author: AlienVault
Created: 2026-02-18 16:28:06
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Browser #Cloud #CyberSecurity #DataTheft #FakeBrowser #InfoSec #NetSupport #NetSupportRAT #OTX #OpenThreatExchange #RAT #RDP #SMS #Stealc #Word #Wordpress #bot #AlienVault
Show Original Post
denispetitclerc (@denispetitclerc@mstdn.ca)
Constructeurs de pages pour sites WordPress
Voici ceux que j’ai le plus utilisés avec WordPress dans les dernières années, en ordre de quantité :
1- Divi
2- Elementor + Hello
3- Salient + WPBakery
4- Avada
Ils proposent un combo d’outils pour monter les pages, créer des modèles et l’utilisation de thèmes.
Voici le bénéfice principal de l’utilisation d’un constructeur reconnu : il comporte des mises à jour et est supporté.
Show Original Post
wpnewsio (@wpnewsio@mastodon.social)
Tired of cluttered media libraries? WP Media Cleanup scans your site to remove unnecessary image variations and boosts site efficiency in just a click.
#WordPress #Plugins #Duplicator #medialibrary
https://ift.tt/QMiYBkZ
Show Original Post
tresseo (@tresseo@mastodon.social)
#woocommerce #wordpress #ecommerce #marketing
https://developer.woocommerce.com/2026/02/18/woocommerce-10-5-2-dot-release/
Show Original Post
iamarino (@iamarino@mastodon.social)
Lily Burton Is Pivoting from PhD to Science Journalism. Her Portfolio Took an Hour to Build — and Already Landed Her Work. https://wordpress.com/blog/2026/02/18/lily-burton-website-story/ #AIWebsiteBuilder, #Portfolio, #SuccessStories, #Wordpress-com
Show Original Post
ironicmoka (@ironicmoka@livellosegreto.it)
Inizia il #WordPress Meetup Torino di questo mese! Alessandro Poletto fa il punto con noi sul tema della cache nel mondo WP.
@wp_ita #wptorino
Show Original Post
rswebsols (@rswebsols@mastodon.social)
Customized Thank You Pages for WooCommerce: A Plugin to Increase Customer Retention #wordpress #ecommerce
Boost customer retention with customized WooCommerce thank-you pages. The post explains why the post-purchase page matters and how a plugin can optimize it for repeat sales. Read more at https://ift.tt/fUTdlPr
Source: https://ift.tt/fUTdlPr | Image: https://ift.tt/VteoB7N
Show Original Post
AAKL (@AAKL@infosec.exchange)
New.
"GrayCharlie, which overlaps with SmartApeSG and first emerged in mid-2023, is a threat actor that injects links to externally hosted JavaScript into compromised WordPress sites. These links redirect victims to NetSupport RAT infections delivered via fake browser update pages or ClickFix techniques, ultimately resulting in Stealc and SectopRAT infections."
Recorded Future: GrayCharlie Hijacks Law Firm Sites in Suspected Supply-Chain Attack https://www.recordedfuture.com/research/graycharlie-hijacks-law-firm-sites-suspected-supply-chain-attack #infosec #WordPress #threatresearch #JavaScript
Show Original Post
JosKleverWebSupport (@JosKleverWebSupport@toot.re)
Net op een kleine #WordPress site 160MB schijfruimte vrijgemaakt door Independent Analytics te vervangen door #KokoAnalytics.
Dat scheelt al een geoip database van 133 MB!
Show Original Post